Use standard Active Directory in an ASP.NET Core application?

Question

Use standard Active Directory in an ASP.NET Core application?

I am creating a new ASP.NET Core 1.0 application. One requirement is to use Active Directory to authenticate users. Unfortunately, our organization uses only the "old" Active Directory. We do not use Azure Active Directory at all.

When I create a new project in Visual Studio 2015, there is no option for the "Change Authentication" option:

What is the best way to do this?

+5

asp.net asp.net-core visual-studio-2015 asp.net-core-mvc active-directory

Derek Mar 31 '16 at 23:06

source share

2 answers

blowdart · Answer 1 · 2016-04-01T16:47:54+0000

This is currently not possible.

ASP.NET Core only supports OpenID Connect OIDC. The current versions of ADFS that you need to create a single organization on premises only support WSFed, which is not yet implemented in Core and is unlikely to be implemented in Core RTM. ADFS also supports OAuth, but the AAD team that writes the code for this part focuses on OIDC.

Will · Answer 2 · 2016-06-15T18:41:24+0000

ASP.NET Core 1.0 RC2 can use Windows authentication. The following code will give you access to the AD user authentication object in the Configure () function. I did not find an elegant way to map this identifier with the permissions of Microsoft.AspNetCore.Identity in ApplicationDbContext.

app.Use(async (context, next) => { var identity = (ClaimsIdentity) context.User.Identity; await next.Invoke(); });

I sent a similar question you might want: Best practice for storing authorization applications for an ASP.NET core resource when authenticating users in Active Directory?

Use standard Active Directory in an ASP.NET Core application?

More articles: